Download
| Alert*
oval:org.secpod.oval:def:115033
libzypp is installed oval:org.secpod.oval:def:89044814 The Software Update Stack was updated to receive fixes and enhancements. libzypp: - Adapt to work with GnuPG 2.1.23. - Support signing with subkeys. - Enhance sort order for media.1/products. zypper: - Also show a gpg key"s subkeys. - Improve signature check callback messages. - Add options to ... oval:org.secpod.oval:def:89002116 This update for libzypp, zypper fixes the following issues: Update libzypp to version 16.17.20: Security issues fixed: - PackageProvider: Validate deta rpms before caching - PackageProvider: Validate downloaded rpm package signatures before caching Other bugs fixed: - lsof: use "-K i" if lsof supp ... oval:org.secpod.oval:def:89047496 This update for libsolv, libzypp, zypper fixes the following issues: Security relevant fix: - Harden package signature checks . libsolv update to 0.7.22: - reworked choice rule generation to cover more usecases - support SOLVABLE_PREREQ_IGNOREINST in the ordering code - support parsing of Debian"s ... oval:org.secpod.oval:def:115032 libzypp is a library for package management built on top of the libsolv library. It is the foundation for the Zypper package manager. oval:org.secpod.oval:def:89050260 This update for libsolv, libzypp, zypper fixes the following issues: Security issue fixed: - CVE-2019-18900: Fixed assert cookie file that was world readable . Bug fixes - Fixed removing orphaned packages dropped by to-be-installed products . - Adds libzypp API to mark all obsolete kernels according ... oval:org.secpod.oval:def:89050364 This update for libsolv, libzypp, zypper fixes the following issues: Security issue fixed: - CVE-2019-18900: Fixed assert cookie file that was world readable . Bug fixes - Fixed removing orphaned packages dropped by to-be-installed products . - Adds libzypp API to mark all obsolete kernels according ... oval:org.secpod.oval:def:119418 libzypp is a library for package management built on top of the libsolv library. It is the foundation for the Zypper package manager. oval:org.secpod.oval:def:115058 libzypp is a library for package management built on top of the libsolv library. It is the foundation for the Zypper package manager. oval:org.secpod.oval:def:89049758 This update for libzypp, zypper, libsolv provides the following fixes: Security fixes in libzypp: - CVE-2018-7685: PackageProvider: Validate RPMs before caching - CVE-2017-9269: Be sure bad packages do not stay in the cache Changes in libzypp: - Update to version 17.6.4 - Automatically fetch repos ... oval:org.secpod.oval:def:89003100 This update for libsolv, libzypp and zypper fixes the following issues: libsolv was updated to version 0.6.36 and fixes the following issues: Security issues fixed: - CVE-2018-20532: Fixed a NULL pointer dereference in testcase_read . - CVE-2018-20533: Fixed a NULL pointer dereference in testcase_st ... oval:org.secpod.oval:def:89003092 This update for libsolv, libzypp and zypper fixes the following issues: libsolv was updated to version 0.6.36 fixes the following issues: Security issues fixed: - CVE-2018-20532: Fixed a NULL pointer dereference in testcase_read . - CVE-2018-20533: Fixed a NULL pointer dereference in testcase_str2de ... oval:org.secpod.oval:def:89050765 This update for libzypp and libsolv fixes the following issues: Security issues fixed: - CVE-2018-20532: Fixed NULL pointer dereference at ext/testcase.c . - CVE-2018-20533: Fixed NULL pointer dereference at ext/testcase.c in libsolvext.a . - CVE-2018-20534: Fixed illegal address access at src/poo ... |